CVE-2025-4299 Tenda AC1206 openSchedWifi setSchedWifi buffer overflow

🗓️ 06 May 2025 00:00:07Reported by VulDBType

Critical buffer overflow vulnerability in Tenda AC1206 affecting setSchedWifi function remotely.

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the check_dws_cookie function in the /storage directory of the Tenda DAP-1520 router microprogramming software allows a hacker to execute arbitrary code.	23 May 202500:00	–	bdu_fstec
Circl	CVE-2025-4299	5 May 202512:28	–	circl
CNNVD	Tenda AC1206 安全漏洞	5 May 202500:00	–	cnnvd
CNVD	Tenda AC1206 Buffer Overflow Vulnerability (CNVD-2025-09668)	8 May 202500:00	–	cnvd
CVE	CVE-2025-4299	6 May 202500:00	–	cve
EUVD	EUVD-2025-13398	3 Oct 202520:07	–	euvd
NVD	CVE-2025-4299	6 May 202500:15	–	nvd
OSV	CVE-2025-4299	6 May 202500:15	–	osv
Positive Technologies	PT-2025-19810 · Tenda · Tenda Ac1206	5 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-4299	8 May 202500:09	–	redhatcve

[
  {
    "vendor": "Tenda",
    "product": "AC1206",
    "versions": [
      {
        "version": "15.03.06.0",
        "status": "affected"
      },
      {
        "version": "15.03.06.1",
        "status": "affected"
      },
      {
        "version": "15.03.06.2",
        "status": "affected"
      },
      {
        "version": "15.03.06.3",
        "status": "affected"
      },
      {
        "version": "15.03.06.4",
        "status": "affected"
      },
      {
        "version": "15.03.06.5",
        "status": "affected"
      },
      {
        "version": "15.03.06.6",
        "status": "affected"
      },
      {
        "version": "15.03.06.7",
        "status": "affected"
      },
      {
        "version": "15.03.06.8",
        "status": "affected"
      },
      {
        "version": "15.03.06.9",
        "status": "affected"
      },
      {
        "version": "15.03.06.10",
        "status": "affected"
      },
      {
        "version": "15.03.06.11",
        "status": "affected"
      },
      {
        "version": "15.03.06.12",
        "status": "affected"
      },
      {
        "version": "15.03.06.13",
        "status": "affected"
      },
      {
        "version": "15.03.06.14",
        "status": "affected"
      },
      {
        "version": "15.03.06.15",
        "status": "affected"
      },
      {
        "version": "15.03.06.16",
        "status": "affected"
      },
      {
        "version": "15.03.06.17",
        "status": "affected"
      },
      {
        "version": "15.03.06.18",
        "status": "affected"
      },
      {
        "version": "15.03.06.19",
        "status": "affected"
      },
      {
        "version": "15.03.06.20",
        "status": "affected"
      },
      {
        "version": "15.03.06.21",
        "status": "affected"
      },
      {
        "version": "15.03.06.22",
        "status": "affected"
      },
      {
        "version": "15.03.06.23",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/CH13hh/tmp_store_cc/blob/main/AC1206/AC1206setSchedWifi/setSchedWifi.md
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
tenda	www.tenda.com.cn/
vuldb	www.vuldb.com/

06 May 2025 00:00Current

CVSS 48.7

CVSS 3.18.8

CVSS 38.8

CVSS 29

EPSS0.02038